Memory Protection with Dynamic Authentication Trees

2022 29th International Conference on Mixed Design of Integrated Circuits and System (MIXDES) Pub Date : 2022-06-23 DOI:10.23919/mixdes55591.2022.9838004

M. Millar, M. Lukowiak, S. Radziszowski

{"title":"Memory Protection with Dynamic Authentication Trees","authors":"M. Millar, M. Lukowiak, S. Radziszowski","doi":"10.23919/mixdes55591.2022.9838004","DOIUrl":null,"url":null,"abstract":"As embedded devices increase in use and handle more critical information and functionalities, the importance of security grows even greater. Defense against bus attacks such as spoofing, splicing, and replay attacks is of particular concern. Traditional memory authentication techniques, such as hashes and message authentication codes, require significant amounts of on-chip memory and introduce a large performance impact when protecting off-chip memory during run-time. Balanced authentication trees such as the well-known Merkle tree or TEC-Tree can be used to reduce this cost. This work proposes a new method of dynamic authentication trees, which updates a tree structure based on a processor's memory access pattern. An HDL model for use in an FPGA has been developed as a transparent and highly customizable AXI-4 memory controller. The performance of our tree design is comparable to that of the TEC- Tree in several memory access patterns. Speedup over the TEC- Tree is possible to achieve when applied in scenarios that frequently access previously processed data.","PeriodicalId":356244,"journal":{"name":"2022 29th International Conference on Mixed Design of Integrated Circuits and System (MIXDES)","volume":"139 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2022-06-23","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2022 29th International Conference on Mixed Design of Integrated Circuits and System (MIXDES)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.23919/mixdes55591.2022.9838004","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

As embedded devices increase in use and handle more critical information and functionalities, the importance of security grows even greater. Defense against bus attacks such as spoofing, splicing, and replay attacks is of particular concern. Traditional memory authentication techniques, such as hashes and message authentication codes, require significant amounts of on-chip memory and introduce a large performance impact when protecting off-chip memory during run-time. Balanced authentication trees such as the well-known Merkle tree or TEC-Tree can be used to reduce this cost. This work proposes a new method of dynamic authentication trees, which updates a tree structure based on a processor's memory access pattern. An HDL model for use in an FPGA has been developed as a transparent and highly customizable AXI-4 memory controller. The performance of our tree design is comparable to that of the TEC- Tree in several memory access patterns. Speedup over the TEC- Tree is possible to achieve when applied in scenarios that frequently access previously processed data.

查看原文本刊更多论文

动态认证树的内存保护

随着嵌入式设备使用的增加以及处理更多关键信息和功能，安全性的重要性变得更加重要。对总线攻击(如欺骗、拼接和重放攻击)的防御尤其值得关注。传统的内存身份验证技术，如散列和消息身份验证码，需要大量的片上内存，并且在运行时保护片外内存时会带来很大的性能影响。平衡的身份验证树(如众所周知的Merkle树或TEC-Tree)可以用于降低此成本。本文提出了一种新的动态认证树方法，该方法根据处理器的内存访问模式更新树结构。一个用于FPGA的HDL模型已被开发为一个透明和高度可定制的axis -4内存控制器。在几种内存访问模式中，我们的树设计的性能与TEC- tree相当。当应用于频繁访问先前处理过的数据的场景时，可以实现TEC- Tree上的加速。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2022 29th International Conference on Mixed Design of Integrated Circuits and System (MIXDES)

自引率

0.00%

发文量